Payfast ransomware encrypts personal files and demands a ransom payment in exchange for a decryptor. It’s a fairly typical ransomware infection and is a new ZEPPELIN ransomware variant. You can identify this ransomware by the extension added to encrypted files. It adds .payfast followed by the ID assigned to you. Once file encryption is done, “!!! ALL YOUR FILES ARE…
Hoop Ransomware is file-encrypting malware from the Djvu/STOP ransomware family. The group has released hundreds of ransomware versions, with Hoop being one of the more recent ones. This particular ransomware adds the .hoop file extension to encrypted files and drops the generic _readme.txt ransom note that explains how files could be decrypted. Unfortunately, at this moment the only ones with…
Muuq ransomware is a generic file-encrypting malware infection that comes from the Djvu/STOP ransomware family. The gang operating these ransomware infections has released hundreds of essentially identical threats, some of which we have previously written about. You can identify this particular ransomware by the .muuq extension added to encrypted files. Currently, files with that extension are undecryptable, though that may…
Nooa ransomware will encrypt your files and demand that you pay a ransom to recover them. It comes from the notorious Djvu/STOP malware family and is one of the hundreds of versions that these cybercrooks have released in only a couple of years. This version can be differentiated from the other ones by the .nooa file extension that gets added…
Hhqa ransomware is file-encrypting malware from the Djvu/STOP ransomware family. This gang of cybercriminals has released hundreds of ransomware versions and continues to release them on a regular basis, with Hhqa ransomware being the most recent version. The versions are essentially identical and can be differentiated by the extensions they add to encrypted files. This ransomware adds .hhqa. Unfortunately, this version…
Ufwj Ransomware is file-encrypting malware from the notorious Djvu/STOP ransomware family. The gang has released hundreds of these ransomware versions, and they can be differentiated by the extensions they add to encrypted files. In this case, files will have .ufwj attached to them. Currently, Ufwj ransomware does not have a free decryptor. Once files are encrypted, the ransomware drops a…
Moqs Ransomware is file-encrypting malware that comes from the Djvu/STOP ransomware family. The gang has released hundreds of versions in the past, and this one can be identified by the .moqs file extension added to encrypted files. Once files are encrypted, you will not be able to open them unless you first decrypt them using a special program the ransomware…
Gujd ransomware comes from the notorious Djvu/STOP ransomware family that has already released hundreds of file-encrypting malware versions. This version can be differentiated from the rest by the .gujd file extension that gets added to encrypted files. The ransomware drops a _readme.txt ransom note and is currently not decryptable for free.
…
“This is not a formal email” email is a typical sextortion scam that tries to blackmail users into paying money in exchange for a nonexistent private video to not be released. However, it is nothing more than a scam and can be ignored if it lands in the inbox.
…
“I have got two not really pleasant news for you” email is a typical sextortion scam that tries to blackmail users into paying thousands of dollars to not have a supposed explicit video of them released. It’s a very common scam that’s usually referred to as sextortion due to the blackmail material being a supposed sex video of the victim.…